Security Engineer III/DLP

By joining Sedgwick, you'll be part of something truly meaningful. It's what our 33,000 colleagues do every day for people around the world who are facing the unexpected. We invite you to grow your career with us, experience our caring culture, and enjoy work-life balance. Here, there's no limit to what you can achieve.

Newsweek Recognizes Sedgwick as America's Greatest Workplaces National Top Companies

Certified as a Great Place to Work

Fortune Best Workplaces in Financial Services & Insurance

Security Engineer III/DLP

PRIMARY PURPOSE: The security engineer is responsible for implementing, maintaining, monitoring and managing secure solutions. The engineer delivers these solutions in accordance with the organization's architectural designs, best practices, and regulatory or compliance requirements. As risks change, the security engineer is responsible for recommending modifications and enhancements to ensure the organization is evolving with the threat landscape.

The security engineer contributes to the corporate security strategy with security leadership and other senior security staffers and technologists. Recipients of the engineer's implementations and management include IT infrastructure, application development, security operations, security audit and end users. With an emphasis on securing systems, applications, third-party connections, service providers and ancillary systems, the security engineer is responsible for securing business-to-business initiatives, third-party relationships, outsourced solutions and vendors. Implements, monitors and manages secure solutions that address modern day issues.

ESSENTIAL FUNCTIONS AND RESPONSIBILITIES

• Handles daily implementation, monitoring and operational support of hardware, software, customer applications, managed solutions and service provider relationships.
• Engages in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. Additionally, deliver projects on time, within budget and in accordance with service level agreements (SLAs).
• Assists with incident response and system stability issues as they occur. This may include involvement outside of regular work hours, and responsiveness is expected.
• Works in tandem with architects, the security operations center (SOC), incident responders (in cases of anomalous activity and host compromise), and technology infrastructure and development team members.
• Manages service and escalation tickets within SLA expectations.
• Develops security test plans from architectural design. Identify deficiencies and make enhancements to ensure production is not impacted.
• Participates regularly in change project and change management meetings.
• Researches, validate and deploy solutions meeting security and business needs.
• Follows security engineering fundamentals and processes as outlined in NIST 800-160
• Influences the planning and execution of incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
• Focus on driving security efficiencies, enabling security team members to work on more advanced tasks.
• Conducts performance testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted.
• Develops technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
• Leads IT groups and business units as necessary in troubleshooting compatibility issues between security tools and business or productivity programs.
• Analyzes client and customer needs as required and provides clear and concise reports to leadership.
• Works closely with management on assigned projects from inception through implementation ensuring adequate internal communication and user involvement is maintained.
• Provides feedback and suggestions to management to improve IT Security processes and procedures.
• Works closely with project managers to meet and complete project milestones accurately and on time.

ADDITIONAL FUNCTIONS and RESPONSIBILITIES

• Performs other duties as assigned.
• Travel as required.

QUALIFICATIONS

Education & Licensing

Bachelor's degree in management information systems or another related field and be pursuing a master's degree in business administration or an IT related field. Licenses as needed.

Experience

Three (3) years of experience in cybersecurity, with a system or network security engineering background.

Preferably at least 3+ years' experience in cybersecurity, with a system or network security engineering background

Technical and analytical expertise, with a proven deep background (preferred 2+ years' IT experience in addition to cybersecurity) in technology design, implementation and delivery

Extensive knowledge of traditional security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), identity and access management (IDAM) systems, antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies and application controls.

Experience managing SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, file integrity monitoring (FIM), data loss prevention (DLP) and other network and system monitoring tools.

Preferred Experience

• Experience with Application Control Listing Software
• Experience with SIEM Solutions
• Experience with XDR Solutions
• Experiences with Artificial Intelligence and Machine Learning
• Researching and advising leadership on emerging security technologies
• CIS hardening
• Experience with one or more of the following: ISO 27001, NIST, PCI Data Security Standard (PCI DSS), HIPAA, Health Information Technology for Economic and Clinical Health (HITECH) Act, SOX, the General Data Protection Regulation (GDPR), Center for Internet Security (CIS) standards or Service Organization Controls (SOC) 2.

Skills & Knowledge

• Ability to work independently and solve problems as they arise
• Ability to handle confidential and sensitive information with integrity
• Ability to continuously learn new technologies
• Ability to guide collaboration with team members to achieve goals
• CIA triad expertise
• Information Technology Security frameworks expertise
• CISSP (preferred); CISM and/or SANS certification or Security-related certifications a plus.

WORK ENVIRONMENT

When applicable and appropriate, consideration will be given to reasonable accommodations.

Mental: Clear and conceptual thinking ability; excellent judgment, troubleshooting, problem solving, analysis, and discretion; ability to handle work-related stress; ability to handle multiple priorities simultaneously; and ability to meet deadlines

Physical: Computer keyboarding, travel as required

Auditory/Visual: Hearing, vision and talking

The statements contained in this document are intended to describe the general nature and level of work being performed by a colleague assigned to this description. They are not intended to constitute a comprehensive list of functions, duties, or local variances. Management retains the discretion to add or to change the duties of the position at any time.

Sedgwick is an Equal Opportunity Employer and a Drug-Free Workplace.

If you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, consider applying for it anyway! Sedgwick is building a diverse, equitable, and inclusive workplace and recognizes that each person possesses a unique combination of skills, knowledge, and experience. You may be just the right candidate for this or other roles.